AMENDMENTS TO THE CLAIMS 



This listing of claims will replace all prior versions, and listings, of claims 
in the application: 

1. (Currently amended) A method for managing a database system, 
^comprising: 

receiving a command to perform an administrative function involving an 
obj\ct defined vvithin the database system; 

determining if the object is a sensitive object that is associated with 
securit/sfunctions in the database system, wherein the sensitive obj ect is encrypted 
in the database system, wherein the sensitive object can include a sensitive row 
within a tablk in the database system, wherein the sensitive row contains sensitive 
9 data, and wherein other rows in the table need not contain sensitive data; 
[ 0 if the obj^t is not a sensitive object, and if the command is received from 

1 1 a normal database administrator for the database system, allowing the 

12 administrative functioti to proceed; and 

13 if the object is a sensitive object, and if the command is received from a 

1 4 normal system administratdr, disallowing the administrative function. 

1 2. (Original) The methoXof claim 1 , further comprising: 

2 receiving a request to perfonn an operation on a data item in the database 

3 system; 

4 if the data item is a sensitive da^^item containing sensitive information 

5 and if the request is received fi:om a sensiftve user who is empowered to access 

6 sensitive data, allowing the operation to procfe;^d if the sensitive user has access 

7 rights to the data item; and 

8 if the data item is a sensitive data item and\he request is received from a 

9 normal user, disallowing the operation. 
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1 3 . (Original) The method of claim 2, wherein if the data item is a sensitive 

2 data item, if th\e operation is allowed to proceed, and if the operation involves 

3 retrieval of the d^ta item, the method further comprises decrypting the data item 

4 using an encryption key after the data item is retrieved. 

1 4. (Original) The method of claim 3, wherein the encryption key is stored 

2 along with a table containing the data item. 

1 5. (Original) The method of claim 4, wherein the encryption key is stored 

2 in encrypted form. ^ 

1 6. (Previouslvpt^sented) The method of claim 1, wherein the sensitive 

2 object can include one of: 

3 a sensitive table contaming sensitive data in the database system; and 

4 an object that^gre^ts a sensitive user of the database system who is 

5 empowered to access sensitive data.. 

1 |. n 7 VOriginal) The method of claim 1 , wherein if the object is not a sensitive 

2 object, and\f the command to perform the administrative function is received 

3 from a securiW officer, the method further comprises allowing the security officer 

4 to perform theVdministrative function on the object. 

1 8. (Original The method of claim 1 , 

2 wherein the database system includes a number of sensitive data items; 

3 and \ 

4 wherein only specific sensitive users are allowed to access a given 

5 sensitive data item. \ 

\ ^ 
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1 9. (CurrWly amended) A computer-readable storage medium storing 

2 instructions that when executed by a computer cause the computer to perform a 

3 method for managing a database system, the method comprising: 

4 receiving alcommand to perform an administrative function involving an 

5 object defined within the database system; 

6 determining if the object is a sensitive object that is associated with 

7 security functions in the database system, wherein the sensitive object is encr\^pted 

8 in the database svsteni wherein the sensitive object can include a sensitive row 

9 within a table in the database system, wherein the sensitive row contains sensitive 

10 data, and wherein other Vows in the table need not contain sensitive data; 

1 1 if the object is nola sensitive object, and if the command is received from 

12 a normal database administrator for the database system, allowing the 

13 administrative function to proceed; and 

14 if the object is a sensmve object, and if the command is received from a 

1 5 normal system administrator, disallowing the administrative fimction. 

1 10, (Original) The compiiter-readable storage medium of claim 9, wherein 

2 the method further comprises: \ 

3 receiving a request to perform an operation on a data item in the database 

4 system; \ 

5 if the data item is a sensitive dam item containing sensitive information 

6 and if the request is received from a sensmve user who is empowered to access 

7 sensitive data, allowing the operation to proceed if the sensitive user has access 

8 rights to the data item; and \ 

9 if the data item is a sensitive data itenXand the request is received from a 

10 normal user, disallowing the operation. \ 

4 \ 
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1 11. (Original) The computer-readable storage medium of claim 10, 

2 wherein if the dam item is a sensitive data item, if the operation is allowed to 

3 proceed, and if tha operation involves retrieval of the data item, the method 

4 further comprises oecrypting the data item using an encryption key after the data 

5 item is retrieved. 

1 12. (Original) The computer-readable storage medium of claim 1 1 , 

2 wherein the encryptionVey is stored along with a table containing the data item. 

1 13. (Original) TheVomputer-readable storage medium of claim 12, 

2 wherein the encryption key ifi stored in encrypted form. 
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14. (Previously nOented) The computer-readable storage medium of 

claim 9, wherein the sensitive^' object can include one of: 

a sensitive table containing sensitive data in the database system; and 
an object that reprWnts/sensitive user of the database system who is 

empowered to access sensitive data,. 

"V^*^^^^^^ The computer-readable storage medium of claim 9, wherein 
if the object fte not a sensitive object, and if the command to perform the 
administrative Vmction is received from a security officer, the method fiirther 
comprises allowing the secvirity officer to perform the administrative fimction. 



1 
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16. (Originalm'he computer-readable storage medium of claim 9, 
wherein the database system includes a number of sensitive data items; 



and 



5 
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4 wherefri only specific sensitive users are allowed to access a given 

5 sensitive data i\em. 

1 1 7. (Cun^ntly amended) An apparatus for managing a database system, 

2 comprising: \ 

3 a commana receiving mechanism that is configured to receive a command 

4 to perform an administrative function involving an object defined within the 

5 database system; \ 

6 an execution mechanism that is configured to, 

7 determine if the object is a sensitive object that is 

8 associatemwith security functions in the database system, wherein 

9 the sensitive object is encrypted in the database system, wherein 

10 the sensitive Vbject can include a sensitive row within a table in the 

1 1 database systeki, wherein the sensitive row contains sensitive data, 

12 and wherein other rows in the table need not contain sensitive data, 

1 3 allow the administrative function to proceed, if the object is 

14 not a sensitive object, and if the command is received from a 

15 normal database administrator for the database system, and to 

16 disallow the administrative function, if the object is a 

1 7 sensitive object, and inthe command is received from a normal 

1 8 system administrator. \ 

1 18. (Original) The apparatus of claW 1 7, 

2 wherein the command receiving mechanism is configured to receive a 

3 request to perform an operation on a data iteA in the database system; 

4 wherein the execution mechanism is configured to, 



6 \ 
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allow the operation to proceed, if the data item is a 

item, if the request is received from a sensitive user 
Dwered to access sensitive data, and if the sensitive user 
ghts to the data item, and to 
disallow the operation, if the data item is a sensitive data 
item, and if the request is received from a normal user. 

19. (Original) The apparatus of claim 18, fiirther comprising a decryption 



mechanism, wherein if the 
allowed to proceed, and if 



data item is a sensitive data item, if the operation is 
e operation involves retrieval of the data item, the 
decryption mechanism is cdnfigured to decrypt the data item using an encryption 
key after the data item is retrieved 



1 20. (Original) The apparatus of claim 19, wherein the encryption key is 

2 stored along with a table containing the data item. 

1 21. (Original) The appWatus of claim 20, wherein the encryption key is 

2 stored in encrypted form. 1 
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22. (Previousljvpresented) The apparatus of claim 17, wherein the 

sensitive object can inclMe one of: 

a sensitive table containing sensitive data in the database system; and 
an object that repres^ts a sensitive user of the database system who is 

empowered to access sensitiveSdata.. 



3. (C^ginal) The apparatus of claim 1 7, wherein if the object is not a 




sensitive object, ^id if the command to perform the administrative fimction is 

7 
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3 received from a securiW officer, the execution mechanism is configured to allow 

4 the security officer to parform the administrative function. 

1 24. (Original) Thfe apparatus of claim 1 7, 

2 wherein the database system includes a number of sensitive data items; 

3 and \ 

4 wherein only specific sensitive users are allowed to access a given 

5 sensitive data item, \ 



8 
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